Privacy Policy - Aperto
Last updated: October 28, 2025
Introduction
Aperto ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application, web services, and related services.
GDPR Notice: As a service operating within the European Union, we comply with the General Data Protection Regulation (GDPR). This policy outlines your rights and our obligations regarding your personal data.
Information We Collect
Personal Information
- Email address (for account creation and authentication)
- Name (optional, for personalization)
- Language preferences and account settings
- Account credentials (securely hashed and salted)
Location Data
We collect your location data when you use our monument identification features. This includes:
- Precise location coordinates to identify nearby monuments
- Location history associated with your monument scans
- Geographic region information for content localization
Camera and Photos
When you use our camera feature:
- Photos are captured and processed for monument identification
- Images are securely stored on Cloudflare R2 to improve platform accuracy
- Image data is shared with OpenAI for AI-powered monument identification services
- Photos include metadata such as upload timestamp and user association
- We do not share images with tracking agencies or unauthorized third parties
Device Information
- Device type and operating system information
- App version and usage analytics
- Crash reports and performance data collected via Sentry for service improvement
- Error logs and debugging information to improve app stability
- Product analytics including user interactions, feature usage, and navigation patterns collected via PostHog
- Session-level properties such as app language and version information
- Application usage patterns and feature interactions
- Server logs and API request data sent to Papertrail logging service for monitoring
Audio and Microphone Data
- Microphone access permissions for potential future audio features
- Audio recording capabilities (currently not actively used)
- Voice interaction data if audio features are enabled
Notification Data
- Push notification tokens for sending location-based alerts
- Notification preferences and settings
- Delivery status and interaction data with sent notifications
Analytics and Session Recording
We use analytics tools to understand how users interact with our app and improve user experience:
- User interaction events such as button clicks, feature usage, and navigation flows
- Screen view tracking to understand user journeys through the app
- Session replay capabilities may be enabled in the future with your explicit consent to record anonymized screen interactions, taps, and gestures for debugging and user experience improvement
- Session recordings, if enabled, will never capture sensitive information such as passwords, payment details, or personal messages
- You will be notified and asked for consent before any session recording features are activated
Legal Basis for Processing (GDPR)
Under GDPR, we process your personal data based on the following lawful bases:
- Contract: Processing necessary for the performance of our service agreement with you
- Consent: For optional features like location tracking and analytics, where you have provided explicit consent
- Legitimate Interest: For service improvement, product analytics, security, and fraud prevention. You have the right to object to processing based on legitimate interests
- Legal Obligation: When required to comply with applicable laws and regulations
How We Use Your Information
- Provide and maintain our monument identification services
- Identify monuments and provide relevant historical information
- Improve our app functionality and user experience
- Send important updates about our services
- Respond to your support requests and communications
- Ensure security and prevent fraud or abuse
Data Sharing and International Transfers
We do not sell, trade, or rent your personal information to third parties. We may share your information with the following service providers:
- OpenAI: AI-powered monument identification and image processing (United States)
- Google Services: Authentication, nearby places API, and map services (United States)
- Apple Sign-In: Authentication services (United States)
- Cloudflare: Secure image storage, web hosting, and infrastructure (EU/Global)
- Sentry: Error tracking, crash reporting, and performance monitoring (Germany/EU)
- PostHog: Product analytics, user behavior tracking, and app usage insights (EU (hosted on EU servers))
- Papertrail (SolarWinds): Server logging, monitoring, and debugging (United States)
- Wikipedia APIs: Monument information and nearby places data (Global)
Your Rights Under GDPR
Under GDPR, you have the following rights regarding your personal data:
- Right of Access: Request a copy of your personal data we hold
- Right to Rectification: Correct inaccurate or incomplete personal data
- Right to Erasure: Request deletion of your personal data and account
- Right to Restrict Processing: Limit how we process your personal data
- Right to Data Portability: Receive your data in a machine-readable format
- Right to Object: Object to processing based on legitimate interests
- Right to Withdraw Consent: Withdraw consent for processing that requires it
Data Security
We implement comprehensive security measures to protect your information:
- End-to-end encrypted data transmission using HTTPS/TLS
- Secure server infrastructure hosted on Cloudflare Workers
- Password hashing and salting for account security
- Regular security audits and monitoring
- Limited access to personal information on a need-to-know basis
- Secure image storage with access controls
Data Retention
We retain your personal data for as long as necessary to provide our services and comply with legal obligations. Specific retention periods: Account data is retained while your account is active and for 30 days after account deletion. Monument scan images are retained for 2 years for service improvement unless deletion is specifically requested. Location data associated with scans is retained for 1 year. Crash reports and error logs are retained for 90 days. You may request deletion of your account and associated data at any time, and we will process such requests within 30 days.
Children's Privacy
Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately and we will take steps to remove it.
Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the new Privacy Policy on our website and updating the "Last updated" date. For significant changes, we will provide additional notice through our app or email.